This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json) Hash identifier: hQxlcYrqqTAJo3bl0niLa0WWT9G/SyPqA5CRcaYqQ8U= Subject key identifier: 2C:CD:16:AA:83:96:73:8A:7D:6B:B6:DC:CC:D1:96:DB:B9:D1:F9:44 Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28 Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28 Certificate serial: 019C43FE2FB105CEB18474AECD860A4F07C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft Manifest number: 1513 Signing time: Mon 09 Feb 2026 20:00:57 +0000 Manifest this update: Mon 09 Feb 2026 20:00:57 +0000 Manifest next update: Tue 10 Feb 2026 20:00:57 +0000 Files and hashes: 1: beStaP3U9BouVtR6HKL7Bht809g.roa (hash: 9C0Yz+gtWBKD86eXJ/yNK0jQEWAJqpkTW4DLxbpVN08=) 2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: v+O3iaLXwQRC8KrUYZWYC9Jn7gNpC0R3UzRGw53brPA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:2f:b1:05:ce:b1:84:74:ae:cd:86:0a:4f:07:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28 Validity Not Before: Feb 9 20:00:57 2026 GMT Not After : Feb 10 20:00:57 2026 GMT Subject: CN=2ccd16aa8396738a7d6bb6dcccd196dbb9d1f944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:39:45:d5:66:4d:1a:a9:ca:7a:1d:0d:3f: 2a:18:50:05:07:cd:56:2e:a5:4c:87:b3:23:a6:40: 7c:6e:ea:fe:2a:1e:cc:05:07:87:d9:38:a2:c2:c7: 2a:b3:3b:4b:a4:9e:44:bf:4b:da:d8:e6:f0:8d:94: 52:d9:95:ea:63:b9:14:75:0f:87:9e:3f:1a:36:53: d5:09:50:bf:24:e8:68:e9:5f:d0:44:61:6d:c8:f5: 73:67:e4:e8:ae:51:27:51:82:35:28:f4:d2:a2:ff: 09:2d:83:61:40:6c:c7:dd:be:b7:0c:c1:ad:3c:70: d1:a5:94:87:db:12:7d:7f:4a:01:06:09:aa:47:07: 66:15:8d:85:bb:f3:10:ad:d2:60:10:91:6d:2d:af: a8:b8:11:42:1b:19:00:f9:bc:8b:a8:68:0d:62:d4: 2d:28:7a:0c:f6:ff:44:68:da:ac:93:30:99:21:0a: 28:56:a2:be:80:a6:db:03:6c:9d:d9:0f:9f:6f:df: 0a:7d:06:33:28:71:d1:22:41:29:1b:e4:c0:06:91: 13:83:18:7f:e5:fa:b6:79:74:10:ff:6b:ed:63:31: 5b:b9:59:d8:40:c2:c5:af:fc:59:b7:a0:ed:71:42: b0:8b:9d:25:c5:5d:c6:c6:04:71:c8:70:b2:ca:06: 6c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:CD:16:AA:83:96:73:8A:7D:6B:B6:DC:CC:D1:96:DB:B9:D1:F9:44 X509v3 Authority Key Identifier: keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:ac:0c:bc:4e:f4:f9:64:41:de:14:6f:c0:ec:df:c3:f7:60: 81:82:1e:ef:a4:34:44:60:2a:dd:22:dc:1f:16:92:0c:09:d5: c9:db:e2:6a:d1:ce:af:b4:7f:54:34:30:ee:70:94:97:d0:5c: 38:22:43:70:22:05:1c:7a:81:f6:d0:4a:6a:d1:15:bc:f7:36: 17:b8:d4:71:b1:4d:b4:92:8d:f4:d8:ae:98:12:8a:49:c5:00: 5d:ea:34:ed:52:55:1b:5a:e1:19:fc:fd:f0:d1:dc:7b:c6:8c: d0:7e:f9:a2:d4:3f:fc:a2:dc:ac:7a:b8:37:1e:90:25:d4:69: 90:90:66:d9:2f:09:3a:65:58:25:f9:69:76:b3:57:ee:af:8f: 72:a8:30:6c:9b:19:95:a3:fd:50:ae:ae:d0:47:90:d3:e4:ba: 42:07:a2:4d:d1:de:28:28:a7:e0:7e:dd:e2:0c:85:02:9b:88: 8d:9f:85:f2:7b:e5:e9:00:51:ab:aa:9f:1b:c9:b5:d8:16:a9: 2c:82:86:64:26:43:ad:63:2f:85:71:4b:42:03:23:e5:14:f0: f1:fa:92:18:8a:79:b1:d4:73:dc:2d:a3:be:00:c7:ee:3d:73: dc:40:97:4c:47:d0:b5:18:77:a7:46:70:b8:1e:00:37:e1:1f: 25:a1:c4:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/i+xBc6xhHSuzYYKTwfBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMTQzNjkwMjMwYTQ0MGE2OGI3YThhYTk4Mjc5ZjJmNjVk ZmVlMjgwHhcNMjYwMjA5MjAwMDU3WhcNMjYwMjEwMjAwMDU3WjAzMTEwLwYDVQQD EygyY2NkMTZhYTgzOTY3MzhhN2Q2YmI2ZGNjY2QxOTZkYmI5ZDFmOTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArY05RdVmTRqpynodDT8qGFAFB81W LqVMh7MjpkB8bur+Kh7MBQeH2TiiwscqsztLpJ5Ev0va2ObwjZRS2ZXqY7kUdQ+H nj8aNlPVCVC/JOho6V/QRGFtyPVzZ+TorlEnUYI1KPTSov8JLYNhQGzH3b63DMGt PHDRpZSH2xJ9f0oBBgmqRwdmFY2Fu/MQrdJgEJFtLa+ouBFCGxkA+byLqGgNYtQt KHoM9v9EaNqskzCZIQooVqK+gKbbA2yd2Q+fb98KfQYzKHHRIkEpG+TABpETgxh/ 5fq2eXQQ/2vtYzFbuVnYQMLFr/xZt6DtcUKwi50lxV3GxgRxyHCyygZs5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCzNFqqDlnOKfWu23MzRltu50flEMB8GA1UdIwQY MBaAFM0UNpAjCkQKaLeoqpgnny9l3+4oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8wOTQ1NmUtYTcxYy00M2IzLWJkNDAt OGVlM2Q5OGNhZDViLzEvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8wOTQ1NmUtYTcxYy00M2IzLWJkNDAtOGVlM2Q5OGNhZDVi LzEvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY6wMvE70 +WRB3hRvwOzfw/dggYIe76Q0RGAq3SLcHxaSDAnVydviatHOr7R/VDQw7nCUl9Bc OCJDcCIFHHqB9tBKatEVvPc2F7jUcbFNtJKN9NiumBKKScUAXeo07VJVG1rhGfz9 8NHce8aM0H75otQ//KLcrHq4Nx6QJdRpkJBm2S8JOmVYJflpdrNX7q+PcqgwbJsZ laP9UK6u0EeQ0+S6QgeiTdHeKCin4H7d4gyFApuIjZ+F8nvl6QBRq6qfG8m12Bap LIKGZCZDrWMvhXFLQgMj5RTw8fqSGIp5sdRz3C2jvgDH7j1z3ECXTEfQtRh3p0Zw uB4AN+EfJaHEBQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:43 2026 by rpki-client